An issue exists on PLANEX CS-W50HD devices with firmware prior to 030720. A hardcoded credential "supervisor:dangerous" was injected into web authentication database "/.htpasswd" during booting process, which allows malicious users to gain unauthorized access and control the device completely; the account can't be modified or deleted.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
planex cs-w50hd_firmware |